Fair Use Policy

1. Authorized scope

The only authorized target is the simulated environment presented inside the Platform. Your activity must stay within the challenges as presented.

2. Prohibited activity

Do not attack the real host, infrastructure, other tenants, or any Pillar Security production system; do not perform denial-of-service, automated scraping, or attempt to circumvent access controls (including the email allow-list) outside the simulated challenges.

3. Conduct

Do not publicly share flags or full solutions. If you discover a real (non-simulated) vulnerability in the Platform, disclose it responsibly to research@pillar.security rather than exploiting it.

4. Enforcement

Violations may result in suspension or termination of access.